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DETAILED ACTION 

1 . Claims 1-27 are pending is this application. 

Claim Rejections - 35 USC § 101 

2. 35 U.S.C. 101 reads as follows: 

Whoever invents or discovers any new and useful process, machine, manufacture, or composition of 
matter, or any new and useful improvement thereof, may obtain a patent therefor, subject to the 
conditions and requirements of this title. 

3. As to claim 19-27, In the light of specification on page 7, applicant has provided 
that applicant intends the medium to include transmission media as such claim is drawn 
to a form of signals and light waves. Carrier waves or signal (electrical or magnetic) 
does not fall into one of the four categories of invention and therefore, claims 19-27 are 
not statutory. Signal is not a series of steps or acts and thus is not a process. Signal is 
not a physical article or object and such is not a machine or manufacture. Signal is not a 
combination of substances and therefore, not a composition of matter. 

Claim Rejections -35 USC §112 

4. Claims 1,10 and 19, recite "retrieving a set of parameters, wherein the 
parameters comprise domain identifiers associated with indications of whether to block 
transmission of cookies from servers associated with the domain identifiers". It is not 
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clear which server applicant is referring to, there is an antecedent basis for mentioned 
claims. Appropriate correction is required. 

5. Claim 6, rejected under 35 U.S.C. 112, first paragraph, as failing to comply with 
the enablement requirement. The claim(s) contains subject matter, which was not 
described in the specification in such a way as to enable one skilled in the art to which it 
pertains, or with which it is most nearly connected, to make and/or use the invention. It 
is not clear what applicant is meant by the phrase " multiple set of parameter ". It is 
required from the applicant to provide with an appropriate explanation for the mentioned 
term in the specification. 

Claim Rejections - 35 USC § 103 

6. The following is a quotation of 35 U.S.C. 103(a) which forms the basis for all 
obviousness rejections set forth in this Office action: 

(a) A patent may not be obtained though the invention is not identically disclosed or described as set 
forth in section 102 of this title, if the differences between the subject matter sought to be patented and 
the prior art are such that the subject matter as a whole would have been obvious at the time the 
invention was made to a person having ordinary skill in the art to which said subject matter pertains. 
Patentability shall not be negatived by the manner in which the invention was made. 

7. Claims 1-27, are rejected under 35 U.S.C. 103(a) as being unpatentable over 
Grantges, Jr. (Patent No.: US 6,324,648 B1), hereinafter "Grant" in view of Datar et al. 
(Patent No.: US 6,351,812 B1), hereinafter "Datar and further in view of Rathbun et al. 
(Pub. No.: US 2003/0005308 A1), hereinafter "Rathbun". 
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8. As to claim 1,10 and 19 e.g. method, apparatus and computer readable medium 
etc. Grant, Datar and Rathbun discloses the invention substantiajly, including, a method 
for processing at a proxy server data transmitted between a server and a client that is 
operated by a user, wherein the proxy server communicates with the client and the 
server through a network, the method comprising (Grant, Fig.1, Elements-22, 34 and 
38): 

receiving at the proxy server a response message from the server for the client 
(Grant, Col.14, lines 29-31); 

detecting at the proxy server a cookie associated with the response message 
(Grant, Col.14, lines 29-31, determining valid cookie means detection of cookie). Grant 
is silent on extracting from the response message a domain identifier associated with 
the server. However, Datar discloses, extracting from the response message a domain 
identifier associated with the server (Datar, Col.4, lines 16-22, where cookie issuing 
authority takes valid domain into consideration). 

Therefore, it would have been obvious to one ordinary skilled in the art at the 
time the invention was made to combine the teachings of Grant with the teachings of 
Datar in order to for a participant in electronic commerce to validate his/her own 
certificate by accessing an authority that checks whether the participant's certificate is 
valid. If the certificate is valid, the authority embeds with the participant's terminal a 
block of data in the form of a cookie that includes a plurality of attributes indicative of the 
certificate (Datar, Abstract) 
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Further, Grant and Datar are silent on retrieving a set of parameters, wherein the 
parameters comprise domain identifiers associated with indications of whether to block 
transmission of cookies from servers associated with the domain identifiers. However, 
Rathbun discloses, retrieving a set of parameters, wherein the parameters comprise 
domain identifiers associated with indications of whether to block transmission of 
cookies from servers associated with the domain identifiers (Rathbun, Fig.1 , element- 
24, [0023, lines 1-8, where server retrieves and decode the cookie and cookie 
inherently contains domain name or website address); and 

processing the cookie at the proxy server in accordance with the retrieved set of 
parameters and the extracted domain identifier ((Rathbun, Fig.1, element-24, [0023, 
lines 1-8, where decoding the cookie means processing the cookie according to set 
parameters). 

Therefore, it would have been obvious to one ordinary skilled in the art at the 
time the invention was made to combine the teachings of Grant and Datar with the 
teachings of Rathbun in order to access credential, where credential has at least one 
role-based attribute in common with the at least one client role-based access privilege, 
the client is granted access to the site. Alternately, a site owner defines a token access 
credential attribute and security file privilege for hierarchal group access to the secured 
web site (Rathbun, Abstract). 

9. As to claim 2, 1 1 and 20, Grant, Datar and Rathbun discloses the invention 
substantially as in the parent claims 1,10 and 19, including, in response to a 
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determination that the set of parameters contains the extracted domain identifier, 
blocking the cookie from transmission from the proxy server to the client (Datar, Col.4, 
lines 16-22, where not issuing the cookie is blocking the cookie); 

caching the cookie at the proxy server; and sending a modified response 
message to the client (Datar, Col.4, lines 63-67). 

10. As to claim 3, 12 and 21 , Grant, Datar and Rathbun discloses the invention 
substantially as in the parent claims 1,10 and 19, including, in response to a 
determination that the set of parameters contains the extracted domain identifier, 
sending the response message along with its associated cookie to the client (Grant, 
Col.9, lines 54-60, where cookie is sent to client). 

11. As to claim 4, 13 and 22, Grant, Datar and Rathbun discloses the invention 
substantially as in the parent claims 1, 10 and 19, including, configuring the set of 
parameters at the proxy server from the client by the user (Grant, Col. 14, lines 46-52). 

12. As to claim 5, 14 and 23, Grant, Datar and Rathbun discloses the invention 
substantially as in the parent claims 1, 10 and 19, including, determining, prior to 
processing the cookie at the proxy server in accordance with the retrieved set of 
parameters and the extracted domain identifier, if the set of parameters contains an 
indication that the user has enabled cookie processing by the proxy server (Datar, 
Col.6, lines 37-47, where participant is enabled to accept the cookie). 
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13. As to claim 6, 15 and 24, Grant, Datar and Rathbun discloses the invention 
substantially as in the parent claims 1, 10 and 19, including, managing multiple sets of 
parameters for the user at the proxy server, wherein each set of parameters is 
associated with an identifier (Rathbun, Fig.1 and 2, [0021, lines 1-8,where three 
different credentials are multiple set of parameters); and 

selecting by the user a first identifier that is associated with the set of parameters 
prior to retrieving the set of parameters, wherein the set of parameters is retrieved in 
accordance with the selected first identifier (Rathbun, [0017, lines 3-9, where client 
accessing the secure site for the first time is using the first identifier as http request). 

14. As to claim 7, 16 and 25, Grant, Datar and Rathbun discloses the invention 
substantially as in the parent claims 1, 10 and 19, including, wherein the first identifier is 
selecting during an authentication operation (Rathbun, [0018, lines 1-3]). 

15. As to claim 8, 17 and 26, Grant, Datar and Rathbun discloses the invention 
substantially as in the parent claims 1,10 and 19, including, selecting a second 
identifier (Rathbun, [0023, lines 1-2], where redirected request to secured site means 
selecting a second identifier); and 

processing the cookie at the proxy server in accordance with a set of parameters 
that is associated with the second identifier (Rathbun, [0023, lines 2-8], where cookie is 
retrieved and decoded which is processed). 



Application/Control Number: 10/621,934 
Art Unit: 2152 



Page 8 



16. As to claim 9, 18 and 27, Grant, Datar and Rathbun discloses the invention 
substantially as in the parent claims 1, 10 and 19, including, wherein identifiers that are 
associated with sets of parameters are chosen from a group comprising a type of client 
device or a client location (Rathbun, [0021 , lines 10-17], where client could belong to 
certain group, department, organization, city or state). 

Conclusion 

Any inquiry concerning this communication or earlier communications from the 
examiner should be directed to Tauqir Hussain whose telephone number is 571-272- 
1247. The examiner can normally be reached on 7:30 AM to 5:00 PM. 

If attempts to reach the examiner by telephone are unsuccessful, the examiner's 
supervisor, Bunjob Jaroenchonwanit can be reached on 571 272 3913. The fax phone 
number for the organization where this application or proceeding is assigned is 571- 
273-8300. 

Information regarding the status of an application may be obtained from the 
Patent Application Information Retrieval (PAIR) system. Status information for 
published applications may be obtained from either Private PAIR or Public PAIR. 
Status information for unpublished applications is available through Private PAIR only. 
For more information about the PAIR system, see http://pair-direct.uspto.gov. Should 
you have questions on access to the Private PAIR system, contact the Electronic 
Business Center (EBC) at 866-217-9197 (toll-free). If you would like assistance from a 
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USPTO Customer Service Representative or access to the automated information 
system, call 800-786-9199 (IN USA OR CANADA) or 571-272-1000. 
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